Police Takeover of Darknet Markets

Seems like the underground markets are in serious trouble.
a Canadian citizen living in Thailand was arrested in that country and is believed to have committed suicide while in custody after international authorities — including police here — worked to close the AlphaBay criminal marketplace on the Dark Web
AlphaBay's takeover

The users of AlphaBay flocked started migrating over to the Hansa Market, which was already under the control of the Dutch police!

An interesting police intereview

There are rumors that Dream Market may also already be under the police control.

FBI arrests NSA Data Leaker

...  unfortunately, it seems like Winner was not aware of the fact "that most new printers print nearly invisibly yellow dots that track down exactly when and where documents, any document, is printed ...
Story

WannaCry Ransomware


  • A good article detailing what this is about.
  • The "hero" who reserved the domain name to halt the spread.
  • Variations start emerging, and more expected soon.
  • Suspected links to North Korea
  • A beginners guide to what this is all about
  • Profits Finally Hit $100,000
  • Can be decrypted -- well sort of - in some conditions

Unprotect MS Word files, check ransomware code

An interesting tool to have (especially for ransomware): How to unprotect vb-code from MS Word.

SHA1 Broken (shattered)!

SHA1 cryptography hash has finally been broken. In all fairness it was declared obsolete a while back. But it is still very interesting to see a theoretical attack live in action.

Free Rides at San Francisco Metro

27-Nov-2016:
A hacker deployed ransomware making the metro system un-usable, and asked for $73000..!

30-Nov-2016:
The hacker gets hacked. Reminder to change those password recovery questions.

Tesco Bank Hack

About 9000 customers lost over £2.5 million. The Bank was then forced to refund the money. This is after they froze internet banking for over 20K customers.

3.2 million debit cards compromised in India

Hackers allegedly used malware to compromise the Hitachi Payment Services platform — which is used to power country's ATM, point-of-sale (PoS) machines and other financial transactions — and stole details of 3.2 Million debit cards!
Amazing

Distressed Yahoo!

Yahoo is a facing a lot of heat at the moment, with some recent events.

First, 500 million user accounts was stolen in 2014, and got dumped online recently. Then, there is news that Yahoo complied with a secret government order to search the incoming emails of all of its users. This secret initiative was not even known to its internal security team.

Verizon, who has been in talks to acquire Yahoo is now seeking a $1 Billion price cut. Hence, the timing of these revelations couldn't have come at a worse time for Yahoo. 

To make matters worse, to avoid users leaving its platform, Yahoo has disabled email-forwarding. This is totally in bad faith, which will only frustrate it's users.

Update 15-Dec-2016:
Yahoo says an additional 1 Billion users were impacted. This is insane!
More details from Krebs.

Update 14-Jun-2017:
The Verizon deal finally goes thru, and Yahoo's CEO resigns.

Update  04-Oct-2017:
Every single Yahoo account was hacked - 3 billion in all - link

Israeli Online Attack Service

A super investigation (and DOXing) done by Brian Krebs. A look at how a DDoS for hire service operates and launders money!   Link

Update 13-Sep-2106:
Krebs gets DDoS-ed for this article, by the same botnet company

China Launches 'Hack-Proof' Satellite

QUESS will send messages to ground stations using entangled photons, Xinhua reported. Such a system is theoretically impossible to hack. In addition, any attempts to eavesdrop would be picked up via an induced change in the photons' state.

Story here

Car Thieves Can Unlock 100 Million Volkswagens With A Simple Wireless Hack

Next time when you leave your car in a parking lot, make sure you don't leave your valuables in it, especially if it's a Volkswagen. What's more worrisome?